June 16th, 2006, 09:45 AM
Reports of a new vulnerability in Microsoft Excel
Again I found this on SANS. Its a report about a 0-day exploit in excel. I have checked secunia and found nothing about it but we should keep our eye's on this blog :
Link to article on SANS:
CISSP, CISM, CISA, SSCP
*Thank you GOD*
Greater the Difficulty, SWEETER the Victory.
Believe in yourself.
June 16th, 2006, 03:30 PM
I can confirm this. I just got off of a conference call with our corporate security team and they have verified it, and we are now blocking a lot of excel file types at our mail gateways. I'm waiting to hear back from someone at MS.
Also, many AV vendors already have dats out that detect this. NAI dats 4875 from 6/15/06 detect the issue.
Trendmicro 2.494 detects the issue. I believe the current signature file is 2.509